ELSA-2017-3601

ELSA-2017-3601 - glibc security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2017-08-09

Description


[2.17-196]
- Avoid large allocas in the dynamic linker (#1452721)

[2.17-195]
- Rounding issues on POWER (#1457177)

[2.17-194]
- Use a built-in list of system call names (#1439165)

[2.17-193]
- Inhibit FMA while compiling sqrt, pow (#1413638)

[2.17-192]
- Exclude lock elision support for older Intel hardware with
Intel TSX that has hardware errata (#841653).

[2.17-191]
- Add transparent lock elision for default POSIX mutexes on
IBM POWER hardware with support for IBM POWER HTM (#731835).

[2.17-190]
- Add transparent lock elision for default POSIX mutexes on
Intel hardware with support for Intel TSX (#841653).
- Update dynamic loader trampoline for Intel Skylake server (#1421155).

[2.17-189]
- Update dynamic loader trampoline for Intel SSE, AVX, and AVX512 usage (#1421155)

[2.17-188]
- Improve exp() and pow() performance in libm (#1409611)
- Add optimized strcmp and strncmp for IBM POWER9 hardware (#1320947)

[2.17-187]
- Define MSG_FASTOPEN. (#1387874)

[2.17-186]
- Update patch for glibc-rh1288613.patch to include tst-res_hconf_reorder
in the list of tests to be built and run. (#1367804)

[2.17-185]
- math: Regenerate ULPs for POWER (#1385004)

[2.17-184]
- Correct s390 definition of SIZE_MAX (#1385003)

[2.17-183]
- Fix CVE-2015-8776 glibc: Segmentation fault caused by passing
out-of-range data to strftime() (#1374658)

[2.17-182]
- Fix CVE-2015-8778: Integer overflow in hcreate and hcreate_r (#1374657)

[2.17-181]
- Fix rare case where calloc may not zero memory properly (#1430477)

[2.17-180]
- malloc: additional unlink hardening for non-small bins (#1326739)

[2.17-179]
- Add improvements and optimizations to take advantage of the new
z13 processor design (#1380680)

[2.17-178]
- Backport the latest POWER8 performance optimizations (#1385004)

[2.17-177]
- LD_POINTER_GUARD in the environment is not sanitized (#1383951)

[2.17-176]
- Fix cmpli usage in power6 memset. (#1418997)

[2.17-175]
- Avoid accessing user-controlled stdio locks in forked child (#1322544)

[2.17-174]
- Fix unbounded stack allocation in catopen function (#1374654)

[2.17-173]
- Fix unbounded stack allocation in nan* functions (#1374652)

[2.17-172]
- Handle /var/cache/ldconfig/aux-cache corruption (#1325138)

[2.17-171]
- Make padding in struct sockaddr_storage explicit (#1338672)

[2.17-170]
- Add AF_VSOCK/PF_VSOCK, TCP_TIMESTAMP (#1417205)

[2.17-169]
- Define and macros unconditionally (#1318877)

[2.17-168]
- Backport the groups merging feature (#1298975)

[2.17-167]
- Fix sunrpc UDP client timeout handling (#1228114)

[2.17-166]
- Add 'sss' service to the automount database in nsswitch.conf (#1392540)

[2.17-165]
- Fix use of uninitialized data in getaddrinfo with nscd (#1324568)
- Remove the 'power8' AT_PLATFORM directory (#1404435)
- Fix profil on aarch64 (#1144516)

[2.17-164]
- Fix TOC stub on powerpc64 clone() (#1398244)

[2.17-163]
- stdio buffer auto-tuning should reject large buffer sizes (#988869)

[2.17-162]
- Backport support/ subdirectory from upstream (#1418978)
- Fix deadlock between fork, malloc, flush (NULL) (#906468)

[2.17-161]
- Fix tst-cancel17/tst-cancelx17 was sometimes segfaulting.
Wait for the read to finish before returning. (#1337242)

[2.17-160]
- Add internal-only support for O_TMPFILE (#1330705)

[2.17-158]
- Do not set initgroups in default nsswitch.conf (#1366569)
- nss_db: Request larger buffers for long group entries (#1318890)
- nss_db: Fix get*ent crash without preceding set*ent (#1213603)
- nss_db: Fix endless loop in services database processing (#1370630)


Related CVEs



Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) glibc-2.17-196.ksplice1.el7.src.rpm0bd56fae1c772fa3988f3a2c5f33f29d-
glibc-2.17-196.ksplice1.el7.i686.rpm94bf3c4ab1934376029a94313189f77c-
glibc-2.17-196.ksplice1.el7.x86_64.rpmd4cf091418813d28a68635024055a39e-
glibc-common-2.17-196.ksplice1.el7.x86_64.rpmf76eabfec92cb9e131c77c4efb547616-
glibc-devel-2.17-196.ksplice1.el7.i686.rpm7e033bf268fd6088963c6113d5ea1a9c-
glibc-devel-2.17-196.ksplice1.el7.x86_64.rpmd731bfb7d4f0027bd4f118329b8f3936-
glibc-headers-2.17-196.ksplice1.el7.x86_64.rpm26f3c4d9a9caf696db9e782b137e33ad-
glibc-static-2.17-196.ksplice1.el7.i686.rpm47ed8eae9920c0d3112c847f806fdb7e-
glibc-static-2.17-196.ksplice1.el7.x86_64.rpm806b4a58b6b5d992889753ef98bfbb58-
glibc-utils-2.17-196.ksplice1.el7.x86_64.rpm747a544d44bf1af798a7e6781c964eec-
nscd-2.17-196.ksplice1.el7.x86_64.rpm0a8cc3550dbb6c6ee74c2f08c78e8744-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete